Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cryptography Expert Sounds Alarm At Possible Math Hack

Posted by Zonk on from the using-numbers-for-evil dept.

netbuzz writes "First we learn from Bruce Schneier that the NSA may have left itself a secret back door in an officially sanctioned cryptographic random-number generator. Now Adi Shamir is warning that a math error unknown to a chip makers but discovered by a tech-savvy terrorist could lead to serious consequences, too. Remember the Intel blunder of 1996? 'Mr. Shamir wrote that if an intelligence organization discovered a math error in a widely used chip, then security software on a PC with that chip could be "trivially broken with a single chosen message." Executing the attack would require only knowledge of the math flaw and the ability to send a "poisoned" encrypted message to a protected computer, he wrote. It would then be possible to compute the value of the secret key used by the targeted system.'"

22 of 236 comments (clear)

  1. The NSA by proudfoot · · Score: 5, Insightful

    The problem with backdoors, is that noone can guarantee who uses them. While it allows for (possibly) justified surveillance by our government, it also allows for it by others.

    The United States, or the NSA, doesn't have all the world's best cryptographers. Russia, China, etc, other nations have excellent skill in these endeavors. Ironically, by trying to protect the nation, the NSA runs the risk of opening us up to foreign espionage.

    1. Re:The NSA by hax0r_this · · Score: 2, Insightful

      Which is why I, for one, doubt that the back door was intentional. The approval that NSA gives is primarily for use by the US government itself, and most of the obstacles that NSA faces in spying on our own government are bureaucratic ones, not technical ones.

    2. Re:The NSA by SuperBanana · · Score: 1, Insightful

      The problem with backdoors, is that noone can guarantee who uses them.

      I can't believe you got modded up to 5, Informative for pointing out something utterly, trivially obvious to this audience.

      --
      Please help metamoderate.
    3. Re:The NSA by Workaphobia · · Score: 2, Insightful

      Just as I can't believe this article itself made it to the front page. Why the hell did someone think it was newsworthy to state that vulnerabilities are bad and flaws can be exploited? This just in: The NSA keeps secrets, Schneier fears the government, and bugs in hardware platforms can theoretically hurt their users.

      --
      Evidently, the key to understanding recursion is to begin by understanding recursion. The rest is easy.
    4. Re:The NSA by digitalchinky · · Score: 2, Insightful

      Ahhh, yes, but I'm not in your back yard, so what you feel as unjust or otherwise is of no consequence to me. :-)

      While I can't speak for the NSA or US laws, in Australia anyone at all can set up an organisation like the Defence Signals Directorate. It is fully legal to monitor communications of foreign origin and destination. For private individuals the vast majority of domestic transmissions are also legal to intercept. (Some exclusions surrounding radio based telephony exist) The government does have far more restrictions imposed on what they can and can't do than the general population. The DSD is prohibited from monitoring all domestic transmissions - with some exceptions. Perhaps much less widely known is that it is entirely legal for the DSD to receive domestic non-communications type signals such as RADAR. The laws are all open for public viewing. Three letter agencies like the DSD are quite transparent in what they can and cannot do. How they do it is what remains secret.

      --
      Signed 'Ex one of Them'

  2. So... by teh+moges · · Score: 2, Insightful

    So, if a security bug is present an exploit could happen...?

  3. WTF "terrorist" by Timothy+Brownawell · · Score: 4, Insightful

    Wouldn't pulling off something like this require a level of knowledge and togetherness more in line with a government agency, rather than a "terrorist" group? The results would also be more in line with what a government agency would want ("we have your secrets, ha!"), rather than what a terrorist would want ("Maybe I can't blow up a bridge / poison your water supply / whatever. But then maybe I can. So while you're deciding whether to go do things or hide under your bed all day, I have a question for you: do you feel lucky?").

  4. Terrorists? by Anonymous Coward · · Score: 4, Insightful

    Why does everything have to come back to terrorists? They kill a small number of people and people go nuts about them. Hunger, disease, motor cars, lightning, ... All these things have killed far more people than terrorists and they don't get brought up at every *FUCKING* opportunity. Yeah. I'm pissed off. If the terrorism obsessed turned on their brains for a picosecond they might realise that they have caused far more damage than any terrorist has.

    1. Re:Terrorists? by LaughingCoder · · Score: 1, Insightful

      Hunger, disease, motor cars, lightning, ... All these things have killed far more people than terrorists
      It's about the derivative. Terrorism deaths are growing geometrically. The other causes of death you mention are essentially steady-state. Think about it. In the 70s terrorism acts killed in the single digits (Munich). In the 80s, individual acts of terror killed in the 100s (Lockerbie). In the 90s/00's they have upped the ante to 1000's. And if they get their hands on a dirty bomb or chemical weapon, they will kill 10s or 100s of thousands. This is called geometric growth, and it doesn't take more than a 7th grade math background to easily predict that deaths due to terrorism will eventually (within 10 years at current rates) eclipse all those examples you gave. This is why people are concerned.
      --
      The more you regulate a company, the worse its products become.
    2. Re:Terrorists? by bigberk · · Score: 2, Insightful

      I agree, and I'd say the bigger threat in the context of this article is organized crime. Take for example the botnets/zombie networks, which are an advanced network technology made possible through software exploits. These technology attacks are leveraged for spamming, marketing, denial of service and other forms of extortion.

      As far as threats to the nation, the spam and popups are just the "tip of the iceberg".

      Obviously, the criminals use some pretty smart minds to seek and exploit software weaknesses. I think it's totally feasible that such a criminal group could be involved in more serious attacks that could compromise economic systems, national infrastructure, financial systems, etc.

  5. Re:First Post? by Anonymous Coward · · Score: 5, Insightful

    Um, no. "The terrorists" (a pretty vauge term but I'm assuming you mean those from middle eastern countries by the way you're wording your statement) don't give a rat's ass how we live, whether we have free elections or live with an oppressive government nor do they really care much about how we go about our daily lives, etc, etc. The terrorists wants the US and western countries to stop fucking around in their countries- supporting/installing dictatorships that happen to ally with our interests while bombing and invading countries that we don't like, setting up permanent military bases and just generally exerting our will on them. After a few generations of having western powers screw with their countries and lives it should be little wonder we're not well liked.

    Of course, if you were refering to China or someone else then that might be a different story (but again, the wording sounded like someone regurgitating the drivel that gets thrown out by politicians and pundits in the mainstream media).

  6. No. by Valdrax · · Score: 5, Insightful

    Terrorists want us to stop screwing around in the Middle East and Central Asia -- specifically they want us to stop supporting Israel and to stop propping up various dictatorships in countries where there'd be a good chance of overthrowing the government and creating a theocracy.

    They don't give a flying f--- about "our freedoms" except where they think that shows we are "morally corrupt." Islamic militants are under no illusions that they're going to change our culture any time soon, though. They've got bigger fish to fry back home trying to establish a power block.

    How we govern ourselves beyond our foreign policy is utterly unimportant to their larger goals.

    --
    If it's for-profit but free, you're not the customer -- you're the product (e.g., the Slashdot Beta's "audience").
    1. Re:No. by Anonymous Coward · · Score: 5, Insightful

      Those people are an absolutely tiny minority and can be dealt with sensibly. The majority of people would just like us to stop meddling.

      Stop pissing people off and the nut-jobs who do want us removed will have lost their primary recruitment method.

    2. Re:No. by Valdrax · · Score: 5, Insightful

      Define Terrorists please. If you're talking about Al-Queda, you're wrong. This group hates democracy as it goes against Sharia law to the most extreme. Anything governed outside this religious foundation is seen as an act of Hubris and thus punishable by death in the eyes of Allah (Arabic word for God).

      Yeah, but al-Qaeda doesn't care about our democracy. And seeing us turn into a secular or Christian dictatorship in no way helps further their goals. The more crazy fascist our government becomes, ironically, the less accepting of Islamic fundamentalism it becomes even as it becomes equally repressive. If anything, it's against their long term goals to see us harder ourselves against them.

      Next time, educate yourself about our sworn western enemies before justifying their cause. Bluntly put, I don't give a damn about their cause. These people need to die like the parasites they are on humanity.

      What does explaining their motivations have to do with justifying them? You seem to be the sort of reactionary type that associates any attempt to understand your enemy with accepting them and capitulating to them.

      Geez, it's no wonder you people are losing the War on Terrorism for us.

      --
      If it's for-profit but free, you're not the customer -- you're the product (e.g., the Slashdot Beta's "audience").
    3. Re:No. by TheRaven64 · · Score: 2, Insightful

      Nutcases who want to establish a world-wide caliphate under sharia law? The only "sensible" way to deal with them is bombs, and lots of them. No, the sensible way of dealing with them is to lock them up somewhere where they can receive psychiatric help or, failing that, shoot them. Dropping lots of bombs just serves to cause otherwise rational people that they might have a point and that the world would be a better place without the people responsible for the death of their family.
      --
      I am TheRaven on Soylent News
  7. Re:don't understand by SiliconEntity · · Score: 4, Insightful

    I can't see any way for an attacker to utilize a math error in a decryption function

    Actually this is a common attack scenario in security protocol analysis. While it does not always happen in real life there are ways it can occur. For example, you try to decrypt the message and get garbage. So what do you do? You send the garbage back to the guy, saying, I couldn't read your message, all I got was this junk. Now you have been tricked into acting as what is called an "oracle" for the decryption function. This opens up a number of attacks which is why the best cryptosystems are immune to such problems.

  8. Re:don't understand by Jarjarthejedi · · Score: 2, Insightful

    Wow...and I thought I knew the extend of user stupidity, sending back an unsolicited message because you couldn't decrypt it (since it's fairly obvious these people wouldn't be simply sitting around waiting for people to ask them to send an encrypted message) seems to me to be quite absurd, sending it back partially decrypted even more so.

    I mean, I could understand it if it was solicited communications, but what are the odds you'll happen to start into an encrypted conversation with someone who just wants your key?

    --
    There are two kinds of fool One says 'This is old therefore good' Another says 'This is new therefore better'- Dean Ing
  9. Re:don't understand by garompeta · · Score: 3, Insightful

    >I can't see any way for an attacker to utilize a math error in a decryption function.

    In the same way you aren't the "S" in RSA. Give him some credit, will you?

  10. Terrorist & government symbiosis. by EmbeddedJanitor · · Score: 4, Insightful
    Of course there's all the stuff that terrorists want you to do, but governments need terrorists too.

    Want the citizens to give up some freedom/pay some new tax/whatever? Easy! Play the terrorism trump card.

    Without some Evil Empire force (that the US plays so well), it is very hard for terrorists to get the emotions going either. Terrorists & empire building governments need each other.

    --
    Engineering is the art of compromise.
  11. Re:First Post? by gweihir · · Score: 1, Insightful

    I think the terrorists have already won, because the whole point of terrorism is...terror, and there are very few *thinking* people who are not afraid of the Patriot Act.

    There is strong indication that the main goal of 9/11 was actually against individual freedoms, which this particular brand of "Islam" (they could be fundamentalists of any other religion) does not like. In fact they do not like if people have their own opinions. And they did manage to shiff the US massively in their own direction of thinking. In the end, it seems one fundamentalist is far closer ro another, than to people that are open-minded and tolerant. As an atheist, I believe the main danger of religion is that it can be used as a booster-package for fundamentalists. Many people manage to have religion and still respect others, but a significant number can be coerced into thinking that everybody should subscribe to their particular (and usually bizarre) world-view.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  12. Comment removed by account_deleted · · Score: 4, Insightful

    Comment removed based on user account deletion

  13. Risk evaluation by mcrbids · · Score: 2, Insightful

    People generally evaluate risk on largely emotional terms. For this reason, we frequently make gross errors in risk assessment.

    1) When we think there's somebody out to get us, we evaluate that risk very highly, even when there are more immediate but "random" risks clearly at hand. For example, a "terrorist" is a bogey-man, it's somebody out to get you. But hunger has no bad guy, and neither do disease, auto accidents, and lightning.

    2) We evaluate as "risky" situations where we are not in immediate control, even if they are carefully situated to protect us. For example, riding a horse is far more risky than flying, even in the most dangerous category of flying, single-engine piston planes. Yet people routinely are more concerned about the "motor stalling" in a carefully watched and maintained airplane than they are about their kids riding around without protection on a champion racing horse.

    3) Because of our intense pattern-matching, our ability to relate to other people, and our social nature, we routinely underrate risks that are impersonal - the flip-side of #1 above. For example, auto accidents are seen as a "way of life" and "can't be changed" by most, but freak out when the local high-school is held up for a few hours when some teenie gets involved in a love triangle and holds a SINGLE person "hostage" with a pocket knife. Look at the dichotomy - people who don't attend school drive right by a smashed up car on the way to work, tisking as they go, but sit glued to the telly when something happens at the High School.

    It's reality. Get used to it. And no, it doesn't make sense.

    --
    I have no problem with your religion until you decide it's reason to deprive others of the truth.